Share
## https://sploitus.com/exploit?id=DA83ECD9-94B8-5C24-A91C-C40534925707
# CVE-2020-8158: TypeORM Prototype Pollution Vulnerability

## Overview
This is a proof-of-concept demonstrating CVE-2020-8158, a critical prototype pollution vulnerability in TypeORM versions = 0.2.25)
- `package.json` - Dependencies

## Setup Instructions
See `SETUP.md` for detailed setup and exploitation instructions.

## Mitigation
- Upgrade TypeORM to version 0.2.25 or later
- Validate and sanitize all user inputs
- Use input validation libraries to block prototype pollution attempts
- Consider using Object.freeze() on critical objects

## References
- Official TypeORM Security Advisory
- OWASP Prototype Pollution
- CWE-1321: Improperly Controlled Modification of Object Prototype Attributes